docs: Content tweaking.

.gitmodules

@@ -1,3 +1,3 @@
 [submodule "themes/dst2024"]
-	path = themes/dst2024
-	url = [email protected]:northwood-labs/hugo-dst2024.git
+    path = themes/dst2024
+    url = [email protected]:northwood-labs/hugo-dst2024.git

.markdownlint.base.jsonc

@@ -116,7 +116,9 @@
       "li",
       "nobr",
       "p",
+      "picture",
       "pre",
+      "source",
       "summary",
       "ul"
     ]

Makefile

@@ -186,7 +186,14 @@ tag:
 
 .PHONY: clean
 ## clean: [clean]* Run standard cleanup tasks.
-clean: clean-ds clean-bench clean-tests
+clean: clean-ds clean-bench clean-tests clean-hugo
+
+.PHONY: clean-hugo
+## clean-hugo: [clean] Cleanup cached Hugo assets.
+clean-hugo:
+	@ $(HEADER) "=====> Cleaning Hugo assets..."
+	rm -Rf dist/ public/
+	hugo mod clean --all
 
 .PHONY: lint
 ## lint: [lint]* Run linting tasks.

config/_default/build.toml

@@ -1,5 +1,7 @@
-# https://gohugo.io/getting-started/configuration/#configure-build
+# https://gohugo.io/getting-started/configuration-build/
 
 noJSConfigInAssets   = false
 useResourceCacheWhen = 'fallback'
-writeStats           = true
+
+[build.buildStats]
+  enable = true

config/_default/caches.toml

@@ -1,25 +1,29 @@
 # https://gohugo.io/getting-started/configuration/#configure-file-caches
 
 [assets]
-dir    = ':resourceDir/_gen'
+dir = ':resourceDir/_gen'
 maxAge = -1
 
 [getcsv]
-dir    = ':cacheDir/:project'
+dir = ':cacheDir/:project'
 maxAge = -1
 
 [getjson]
-dir    = ':cacheDir/:project'
+dir = ':cacheDir/:project'
 maxAge = -1
 
 [getresource]
-dir    = ':cacheDir/:project'
+dir = ':cacheDir/:project'
 maxAge = -1
 
 [images]
-dir    = ':resourceDir/_gen'
+dir = ':resourceDir/_gen'
+maxAge = -1
+
+[misc]
+dir = ':cacheDir/:project'
 maxAge = -1
 
 [modules]
-dir    = ':cacheDir/modules'
+dir = ':cacheDir/modules'
 maxAge = -1

config/_default/hugo.toml

@@ -12,6 +12,7 @@ themesDir    = "themes"
 buildDrafts           = false
 buildExpired          = false
 buildFuture           = false
+capitalizeListTitles  = false
 cleanDestinationDir   = true
 # disableKinds          = ["categories", "tags"]
 metaDataFormat        = "toml"
@@ -51,15 +52,21 @@ footnoteAnchorPrefix       = ""
 footnoteReturnLinkContents = "↩"
 gc                         = true
 googleAnalytics            = ""
+ignoreCache                = false
+ignoreLogs                 = false
+ignoreVendorPaths          = false
 log                        = true
 pagination.pagerSize       = 10
 pagination.path            = "p"
+printI18nWarnings          = true
+printPathWarnings          = true
+printUnusedTemplates       = false
 theme                      = "dst2024"
 title                      = "DevSec Tools"
 titleCaseStyle             = "AP"                      # https://gohugo.io/getting-started/configuration/#configure-title-case
 toc                        = true
 uglyURLs                   = false
-watch                      = false
+watch                      = true
 
 # Special
 _merge = "deep"

config/_default/markup.toml

@@ -1,23 +1,61 @@
 defaultMarkdownHandler = "goldmark"
 
 [goldmark]
+  duplicateResourceFiles = false
+
   [goldmark.extensions]
-  definitionList = true
-  footnote       = true
-  linkify        = true
-  strikethrough  = true
-  table          = true
-  taskList       = true
-  typographer    = true
+  definitionList  = true
+  footnote        = true
+  linkify         = true
+  linkifyProtocol = "https"
+  strikethrough   = true
+  table           = true
+  taskList        = true
+
+    [goldmark.extensions.cjk]
+    enable = false
+
+    [goldmark.extensions.typographer]
+    apostrophe = '’'
+    disable = false
+    ellipsis = '…'
+    emDash = '—'
+    enDash = '–'
+    leftAngleQuote = '«'
+    leftDoubleQuote = '“'
+    leftSingleQuote = '‘'
+    rightAngleQuote = '»'
+    rightDoubleQuote = '”'
+    rightSingleQuote = '’'
+
+    [goldmark.extensions.extras]
+      [goldmark.extensions.extras.delete]
+      enable = true
+
+      [goldmark.extensions.extras.insert]
+      enable = true
+
+      [goldmark.extensions.extras.mark]
+      enable = true
+
+      [goldmark.extensions.extras.subscript]
+      enable = true
+
+      [goldmark.extensions.extras.superscript]
+      enable = true
+
+    [goldmark.extensions.passthrough]
+    enable = false
 
   [goldmark.parser]
-  attribute     = true
-  autoHeadingID = true
+  attribute         = true
+  autoHeadingID     = true
+  autoHeadingIDType = "github"
 
   [goldmark.renderer]
   hardWraps = false
   unsafe    = true
-  xHTML     = false
+  xhtml     = false
 
 [highlight]
 codeFences         = true

config/_default/minify.toml

@@ -9,8 +9,8 @@ disableXML   = false
 minifyOutput = true
 
 [tdewolff]
-
   [tdewolff.css]
+  inline    = false
   keepCSS2  = true
   precision = 0
 
@@ -21,18 +21,22 @@ minifyOutput = true
   keepDocumentTags        = true
   keepEndTags             = false
   keepQuotes              = false
+  keepSpecialComments     = false
   keepWhitespace          = false
 
   [tdewolff.js]
   keepVarNames = false
   precision    = 0
+  version      = 2022
 
   [tdewolff.json]
   keepNumbers = false
   precision   = 0
 
   [tdewolff.svg]
-  precision = 0
+  inline       = true
+  keepComments = false
+  precision    = 0
 
   [tdewolff.xml]
   keepWhitespace = false

config/_default/permalinks.toml

@@ -1,2 +1,3 @@
-post     = "/:title/"
-archives = "/"
+classes = 'learning/classes/:slug/'
+vulns   = 'learning/vulns/:slug/'
+years   = 'learning/years/:slug/'

config/_default/sitemap.toml

@@ -1,3 +1,3 @@
-changefreq = "daily"
+changefreq = "weekly"
 filename   = "sitemap.xml"
 priority   = 0.5

content/about/_index.md

@@ -28,4 +28,4 @@ We believe that all of this can be made better, and we intend to try.
 
 This site is an open-source collection of tools that makes it easy to scan and identify potentially-insecure website configurations.
 
-Get the [source](#) and use it under the terms of the [Apache 2.0 license](https://spdx.org/licenses/Apache-2.0.html).
+Get the source and use it under the terms of the [Apache 2.0 license](https://spdx.org/licenses/Apache-2.0.html).

content/learning/classes/_index.md

@@ -0,0 +1,7 @@
+---
+title: Classes of TLS Vulnerabilities
+description: TLS vulnerabilities by type
+layout: list
+---
+
+## By type

content/vulns/_index.md → content/learning/vulns/_index.md

@@ -1,6 +1,6 @@
 ---
-title: Vulnerabilities
-description: Known security vulnerabilities.
+title: TLS Vulnerabilities
+description: Known security vulnerabilities in TLS
 layout: list
 ---
 

content/vulns/racoon.md → content/learning/vulns/raccoon.md

@@ -1,5 +1,5 @@
 ---
-title: Racoon
+title: Raccoon
 description: Finding and Exploiting Most-Significant-Bit-Oracles in TLS-DH(E)
 layout: vuln
 
@@ -27,7 +27,7 @@ learn_more:
 
 ## Overview
 
-The [Racoon Attack] is a timing vulnerability in TLS that allows attackers to decrypt sensitive communications under specific conditions. The attack exploits a side-channel in the Diffie-Hellman key exchange, relying on precise timing measurements and server configuration to break the encryption.
+The [Raccoon Attack] is a timing vulnerability in TLS that allows attackers to decrypt sensitive communications under specific conditions. The attack exploits a side-channel in the Diffie-Hellman key exchange, relying on precise timing measurements and server configuration to break the encryption.
 
 While the attack is complex and requires specific circumstances, it highlights the importance of secure server configurations and the potential impact of timing vulnerabilities on TLS security.
 
@@ -38,4 +38,4 @@ While the attack is complex and requires specific circumstances, it highlights t
 | Vulnerability discovered | {{% param-year %}}  |
 | Vulnerability class      | {{% param-class %}} |
 
-[Racoon Attack]: https://raccoon-attack.com
+[Raccoon Attack]: https://raccoon-attack.com

hugo_stats.json

@@ -31,6 +31,7 @@
       "p",
       "path",
       "picture",
+      "pre",
       "script",
       "source",
       "span",
@@ -111,6 +112,7 @@
       "h-8",
       "h-full",
       "hidden",
+      "hover:bg-indigo-400",
       "hover:bg-indigo-500",
       "hover:bg-opacity-75",
       "hover:text-white",
@@ -128,6 +130,7 @@
       "lg:gap-x-10",
       "lg:grid-cols-4",
       "lg:px-8",
+      "list-none",
       "max-w-2xl",
       "max-w-7xl",
       "md:block",
@@ -139,11 +142,9 @@
       "md:grid-cols-1",
       "md:grid-cols-3",
       "md:hidden",
-      "md:ml-6",
       "min-h-full",
       "min-w-full",
       "ml-10",
-      "ml-4",
       "mt-0",
       "mt-1",
       "mt-10",
@@ -167,6 +168,7 @@
       "px-3",
       "px-4",
       "px-6",
+      "py-1",
       "py-10",
       "py-2",
       "py-5",
@@ -264,8 +266,7 @@
       "summary",
       "tls-12-with-_forward-secrecy_",
       "tls-13",
-      "tmpl-single",
-      "vulnerabilities-of-this-type"
+      "tmpl-single"
     ]
   }
 }